Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/nSgFnK5vr-qR2fFVwEqZP8qrCaU.roa
File: nSgFnK5vr-qR2fFVwEqZP8qrCaU.roa (raw, json)
Hash identifier: pevEBMVTpvOGNgCqlhipsEWbxziHlwaDN4zCidDMsdQ=
Subject key identifier: 9D:28:05:9C:AE:6F:AF:EA:91:D9:F1:55:C0:4A:99:3F:CA:AB:09:A5
Certificate issuer: /CN=9d5138e1facf7b65dbb575fa7d47240c278b34df
Certificate serial: 0A932C44
Authority key identifier: 9D:51:38:E1:FA:CF:7B:65:DB:B5:75:FA:7D:47:24:0C:27:8B:34:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVE44frPe2XbtXX6fUckDCeLNN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/nSgFnK5vr-qR2fFVwEqZP8qrCaU.roa
Signing time: Sat 01 Jan 2022 06:54:16 +0000
ROA not before: Sat 01 Jan 2022 06:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51559
IP address blocks: 185.83.147.0/24 maxlen: 24
185.83.146.0/24 maxlen: 24
185.83.144.0/24 maxlen: 24
185.83.145.0/24 maxlen: 24
185.174.30.0/24 maxlen: 24
185.174.29.0/24 maxlen: 24
185.174.28.0/24 maxlen: 24
2a0b:8100:9::/48 maxlen: 48
2a0b:8100:4::/48 maxlen: 48
2a05:9bc0:b::/48 maxlen: 48
2a05:9bc0:6::/48 maxlen: 48
2a05:9bc0:1::/48 maxlen: 48
2a05:9bc0:4::/48 maxlen: 48
2a05:9bc0::/29 maxlen: 29
2a0b:8100:e::/48 maxlen: 48
2a0b:8100:1::/48 maxlen: 48
2a05:9bc0:8::/48 maxlen: 48
2a05:9bc0:3::/48 maxlen: 48
2a0b:8100::/29 maxlen: 29
2a0b:8100:b::/48 maxlen: 48
2a0b:8100:6::/48 maxlen: 48
2a05:9bc0:d::/48 maxlen: 48
2a05:9bc0::/48 maxlen: 48
2a0b:8100:f::/48 maxlen: 48
2a0b:8100:a::/48 maxlen: 48
2a0b:8100:d::/48 maxlen: 48
2a0b:8100:8::/48 maxlen: 48
2a05:9bc0:f::/48 maxlen: 48
2a0b:8100:3::/48 maxlen: 48
2a05:9bc0:a::/48 maxlen: 48
2a05:9bc0:5::/48 maxlen: 48
2a0b:8100:c::/48 maxlen: 48
2a0b:8100:7::/48 maxlen: 48
2a05:9bc0:e::/48 maxlen: 48
2a0b:8100:2::/48 maxlen: 48
2a05:9bc0:9::/48 maxlen: 48
2a0b:8100:5::/48 maxlen: 48
2a05:9bc0:c::/48 maxlen: 48
2a0b:8100::/48 maxlen: 48
2a05:9bc0:7::/48 maxlen: 48
2a0b:8100:20a7:585b::/64 maxlen: 64
2a05:9bc0:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177417284 (0xa932c44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5138e1facf7b65dbb575fa7d47240c278b34df
Validity
Not Before: Jan 1 06:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d28059cae6fafea91d9f155c04a993fcaab09a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6c:d0:ba:34:e6:3f:93:9c:f4:ab:34:7d:41:
ea:50:3b:7f:f3:0f:9a:4d:92:a5:e1:43:62:51:b1:
11:15:61:cf:b3:bd:0c:be:d4:eb:1a:37:02:f2:9d:
4b:76:b8:73:e6:51:37:2a:bd:4a:fa:d8:15:04:b6:
0e:ea:ff:bd:5b:69:c8:89:c4:55:4d:00:1b:45:e4:
a5:27:89:e7:77:a3:b3:e8:39:3a:57:5f:ff:51:0a:
90:b9:75:8d:96:a6:f5:55:07:20:b7:ee:ac:66:55:
52:0e:cc:15:2e:8e:4b:02:02:8f:47:e0:90:65:f9:
95:52:aa:93:01:4c:9e:06:c6:bd:67:11:46:f7:af:
db:1b:32:e2:32:6a:da:85:87:f5:fd:a2:e8:0e:30:
d0:fd:e0:93:30:96:45:84:a0:58:78:e0:11:5c:0b:
6d:d3:27:27:56:81:7a:db:3c:44:d1:49:cd:e0:df:
81:3a:14:58:2b:0a:c7:3c:d4:d6:bd:c0:5e:4e:56:
38:f8:74:50:69:54:eb:48:1e:73:0a:18:a9:a2:0d:
c1:ed:ec:98:6a:65:9f:d4:03:f0:9b:58:e6:4a:83:
13:7b:7f:40:01:db:c1:62:10:4d:ff:81:22:dc:26:
32:df:a5:74:60:2c:09:5f:56:44:8d:b0:03:91:46:
24:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:28:05:9C:AE:6F:AF:EA:91:D9:F1:55:C0:4A:99:3F:CA:AB:09:A5
X509v3 Authority Key Identifier:
keyid:9D:51:38:E1:FA:CF:7B:65:DB:B5:75:FA:7D:47:24:0C:27:8B:34:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVE44frPe2XbtXX6fUckDCeLNN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/nSgFnK5vr-qR2fFVwEqZP8qrCaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/nVE44frPe2XbtXX6fUckDCeLNN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.144.0/22
185.174.28.0-185.174.30.255
IPv6:
2a05:9bc0::/29
2a0b:8100::/29
Signature Algorithm: sha256WithRSAEncryption
c4:93:ba:89:7b:27:8d:2d:41:bb:0c:12:f3:f7:a6:80:0a:8a:
71:80:99:b7:f0:63:aa:53:5b:48:36:ee:1a:d1:9c:94:22:10:
d8:ce:e9:1a:2e:28:69:30:96:75:bc:6c:d8:3b:e8:2b:ba:aa:
b7:a8:f7:cc:11:0a:af:04:f6:52:92:5b:b8:36:59:71:2e:d6:
0e:ad:65:38:24:b9:ec:d8:cb:17:3f:79:dd:8d:8a:0c:30:cf:
6b:23:49:6e:6e:46:6c:0a:6d:e1:d1:bb:cf:1b:01:7f:65:41:
bc:1d:e2:04:59:9a:79:36:6b:3d:d8:51:a7:1f:7e:01:9f:17:
74:10:75:0a:bf:7b:8e:58:6b:c5:8c:27:9c:85:f5:cd:8a:49:
11:f8:35:f0:90:5c:ba:0d:22:18:5d:3d:1f:0a:f6:9c:ea:65:
58:98:a8:7c:f4:10:5e:96:9c:91:b2:f9:ce:4d:44:a6:3f:5e:
b6:a8:94:49:0f:ce:d8:1e:03:9b:dd:90:4e:a6:65:c3:8d:37:
12:9c:28:a8:35:81:fa:39:70:8f:57:b4:f4:ea:b6:27:f3:95:
a9:3e:0e:30:74:be:20:c2:9b:ae:46:7c:21:b1:f9:cf:74:ce:
7e:78:db:82:a4:8b:55:f3:b9:73:fd:d3:3d:b8:10:30:87:67:
cf:8e:c7:ed
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgIECpMsRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZDUxMzhlMWZhY2Y3YjY1ZGJiNTc1ZmE3ZDQ3MjQwYzI3OGIzNGRmMB4XDTIyMDEw
MTA2NTQxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWQyODA1OWNhZTZm
YWZlYTkxZDlmMTU1YzA0YTk5M2ZjYWFiMDlhNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKhs0Lo05j+TnPSrNH1B6lA7f/MPmk2SpeFDYlGxERVhz7O9
DL7U6xo3AvKdS3a4c+ZRNyq9SvrYFQS2Dur/vVtpyInEVU0AG0XkpSeJ53ejs+g5
Oldf/1EKkLl1jZam9VUHILfurGZVUg7MFS6OSwICj0fgkGX5lVKqkwFMngbGvWcR
Rvev2xsy4jJq2oWH9f2i6A4w0P3gkzCWRYSgWHjgEVwLbdMnJ1aBets8RNFJzeDf
gToUWCsKxzzU1r3AXk5WOPh0UGlU60gecwoYqaINwe3smGpln9QD8JtY5kqDE3t/
QAHbwWIQTf+BItwmMt+ldGAsCV9WRI2wA5FGJCMCAwEAAaOCAi0wggIpMB0GA1Ud
DgQWBBSdKAWcrm+v6pHZ8VXASpk/yqsJpTAfBgNVHSMEGDAWgBSdUTjh+s97Zdu1
dfp9RyQMJ4s03zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L25WRTQ0ZnJQZTJYYnRYWDZmVWNrRENlTE5OOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTMvZDAwMWZmLTgzMjMtNGI4OS1iZTNkLWMyZWZlYjNiMzJhNS8x
L25TZ0ZuSzV2ci1xUjJmRlZ3RXFaUDhxckNhVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTMv
ZDAwMWZmLTgzMjMtNGI4OS1iZTNkLWMyZWZlYjNiMzJhNS8xL25WRTQ0ZnJQZTJY
YnRYWDZmVWNrRENlTE5OOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBD
BggrBgEFBQcBBwEB/wQ0MDIwGgQCAAEwFAMEArlTkDAMAwQCua4cAwQAua4eMBQE
AgACMA4DBQMqBZvAAwUDKguBADANBgkqhkiG9w0BAQsFAAOCAQEAxJO6iXsnjS1B
uwwS8/emgAqKcYCZt/BjqlNbSDbuGtGclCIQ2M7pGi4oaTCWdbxs2DvoK7qqt6j3
zBEKrwT2UpJbuDZZcS7WDq1lOCS57NjLFz953Y2KDDDPayNJbm5GbApt4dG7zxsB
f2VBvB3iBFmaeTZrPdhRpx9+AZ8XdBB1Cr97jlhrxYwnnIX1zYpJEfg18JBcug0i
GF09Hwr2nOplWJiofPQQXpackbL5zk1Epj9etqiUSQ/O2B4Dm92QTqZlw403Epwo
qDWB+jlwj1e09Oq2J/OVqT4OMHS+IMKbrkZ8IbH5z3TOfnjbgqSLVfO5c/3TPbgQ
MIdnz47H7Q==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:08 2023 by rpki-client on console-ams.rpki-client.org